Security Advisory

CVE-2018-14625

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-09-10 13:00:00

Last updated 2024-08-05 09:29:51

Assigner redhat

State PUBLISHED

Description

A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. A race condition between connect() and close() function may allow an attacker using the AF_VSOCK protocol to gather a 4 byte information leak or possibly intercept or corrupt AF_VSOCK messages destined to other clients.

← Browse all CVEs View on cve.org ↗